How to issue Let's Encrypt wildcard certificate with acme.sh and Cloudflare DNS

To issue a Let's Encrypt wildcard certificate with acme.sh and Cloudflare DNS, you will need to perform the following steps:

1. Install acme.sh on your system. This can typically be done by running the following command:

curl https://get.acme.sh | sh

2. Obtain your Cloudflare API key and API email address. You can find instructions for doing this in the Cloudflare documentation.

3. Run the following command to issue a wildcard certificate using Cloudflare DNS:

acme.sh --issue --dns dns_cf -d example.com -d '*.example.com'

Replace example.com with your own domain name, and dns_cf with the DNS API to use.

4. If the certificate issuance is successful, the resulting certificate and private key will be stored in the ~/.acme.sh/example.com directory. You can use these files to configure your web server to use the wildcard certificate.

It is important to note that Let's Encrypt has rate limits in place for issuing wildcard certificates, and you may need to wait before issuing a new certificate if you have reached the limit. You can check the current rate limits and your remaining certificate issuance attempts on the Let's Encrypt website.

You may also need to configure your Cloudflare account to allow acme.sh to issue certificates for your domain. For more information on how to do this, you can consult the acme.sh documentation or the Cloudflare documentation.